SlideShare a Scribd company logo

Hello istio

Jooho Lee, profile picture
Jooho Lee

The document introduces Istio, a service mesh aimed at managing microservices, detailing its key components such as Envoy, Mixer, Pilot, and Citadel for controlling traffic, access, and security. It also outlines various demonstrations including deployment strategies, service resiliency practices, and monitoring techniques through practical examples. Additional resources and links for further training and sample applications are provided.

Software
Related topics:
Red Hat Technologies
1 of 25
Downloaded 18 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Hello ISTIO! Service Mesh and Microservices Jooho Lee
Who am I? Jooho Lee Senior Technical Account Manager in Toronto Red Hat OpenShift User Group Administrator in Facebook Ansible User Group Administrator in Facebook
Routing & Load Balancing Service Discovery Failures, Timeouts and Retries Monitoring, Metrics and Tracing Logging Back Pressure and Shadowing A/B Testing Rate Limiting Authentication and Authorization Security Access Control Circuit Breaking Feature Lists
Similar to something?
Netflix OSS ● A set of frameworks to solve microservice problems at scale ○ Hystrix, Zuul, Eureka, Zipkin, Ribbon, Atlas ● Only Java support ➔ Different frameworks for different languages ◆ Spring, Node, Go? ➔ Inconsistent ➔ Built right into the apps For Polyglot Programming?
Hello ISTIO! https://istio.io
Main Components ● Envoy ○ Deployed as a sidecar to intercept all inbound and outbound traffic, Istio uses the many features of Envoy Proxy in a transparent, agnostic way ● Mixer ○ Mixer acts on request attributes from each envoy. This allows for advanced access control, usage and telemetry ● Pilot ○ Pilot abstracts and controls. Using your defined rules around traffic management, routing and resiliency, it converts and sends the config to the Envoy proxies ● Citadel ○ Key and cert management for secure service to service and end user authentication.
Control Plane -ISTIO-SYSTEM Egress Gateway Ingress Gateway Sidecar-Injector Statsd-Prom-BridgeCleanup-Secrets CitadelGalleyPilot Policy Telemetry Mixer Grafana Grafana-post TracingPrometheus Service Graph
Flow Egress GatewayIngress Gateway CitadelGalleyPilot Policy Telemetry Mixer Control Plane RouterClient Envoy Envoy Chat Client Chat Server CDN
…. kind: Deployment …. template: metadata: annotations: sidecar.istio.io/inject: "true" labels: ….. Auto Inject is available
Show me the sidecar!
The I to O of ISTIO Show me some cool things! ● Install ISTIO!! ● Demo 1 - Base Deployment (Get Ready) ● Demo 2 - Smart Canaries - Routing Based on Headers ● Demo 3 - Smart Canaries - Egress Traffic ● Demo 4 - Smart Canaries - Canary Deployment ● Demo 5 - Service Resiliency - Load Balancing ● Demo 6 - Service Resiliency - Pod Ejection ● Demo 7 - Service Resiliency - Timeout ● Demo 8 - Chaos Testing - Retry + Fault Inject ● Demo 9 - Service Resiliency - Circuit Breaker ● Demo 10 - Monitoring - Tracing, Metrics
Demo 1 - Base Deployment API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Redis CDN Please Connect ⇒chat-client.apps.toronto.openshiftworkshop.com
Next ● Allow Egress(CDN) from chat server API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Check ● Refresh page ○ Check the log on top left ● Go to chat room ○ Refresh page ■ Messages gone Redis CDN Demo 2 - Smart Canaries, Routing on Headers chat-client.apps.toronto.openshiftworkshop.com
Next - Deploy V2 Chat Server API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Check ● Refresh page ○ Red Hat Logo is shown Redis CDN Demo 3 - Smart Canaries, Egress Traffic chat-client.apps.toronto.openshiftworkshop.com
Check ● Login → Chat Room ○ Check Server Version ○ 90/10 Distribution ○ All messages remained API-Server (Auth) Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Rollback virtual service of chat-server to initial state ● Scale Out Server v2 to 3 ● Load Balancing Demo 4 - Smart Canaries, Canary Deployment chat-client.apps.toronto.openshiftworkshop.com
Check ● ¼ users -> v1(25%) ● ¾ users ->v2 (75%) ● Add Destination Rule (LB: RANDOM) ○ Randomly pick v1 and v2 API-Server (Auth) Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Scale Down Server v2 to 1 ● Scale Out API-Server to 2 ● Occur 503 on one of API Server Server (v2) Server (v2) Demo 5 - Service Resiliency & Load Balancing chat-client.apps.toronto.openshiftworkshop.com
Check ● POD Ejection ○ The problematic pod will be ejected from service Server (v2)Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Long Tasks(5sec) ● Set 1s timeout from chat server to auth API-Server (Auth) API-Server (Auth)503 Demo 6 - Service Resiliency, Pod Ejection chat-client.apps.toronto.openshiftworkshop.com
Check ● Response time has to be under 1 secs Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Scale Down API Server to 1 ● Give fault inject (Server → Auth) ● Set retry policy (Server → Auth) API-Server (Auth) API-Server (Auth) Timeout Long Task Demo 7 - Service Resiliency, Timeouts chat-client.apps.toronto.openshiftworkshop.com
Check ● No 503 errors Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Give fault inject (Server → Auth) ● Set retry policy (Server → Auth) API-Server (Auth) 503 Fault InjectionRetry Demo 8 - Chaos Testing, Retry, Fault Injection chat-client.apps.toronto.openshiftworkshop.com
Check ● 503 errors if there are many requests by circuit breaker Server (v2)Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Metrics ● Tracing API-Server (Auth) 503 Demo 9 - Service Resiliency, Circuit Breaker chat-client.apps.toronto.openshiftworkshop.com
Demo 10 - Monitoring and Tracing http://prometheus-istio-system.apps.toronto.openshiftworkshop.com
Demo 10 - Monitoring and Metrics http://grafana-istio-system.apps.toronto.openshiftworkshop.com
Demo: ● https://github.com/Jooho/jhouse_openshift/demos/Hello_ISTIO Training: ● https://learn.openshift.com/servicemesh Sample Applications ● https://istio.io/docs/examples/bookinfo/ ● https://github.com/redhat-developer-demos References
QnA

More Related Content

PPTX
Docker, Atomic Host and Kubernetes.
Jooho Lee
 
PDF
MuleSoft Manchester Meetup #3 slides 31st March 2020
Ieva Navickaite
 
PDF
DockerCon US 2016 - Extending Docker With APIs, Drivers, and Plugins
Arnaud Porterie
 
PDF
Docker in production service discovery with consul - road to opscon 2015
Giovanni Toraldo
 
PPTX
Docker Service Registration and Discovery
m_richardson
 
PDF
Monitoring Containers at New Relic by Sean Kane
Docker, Inc.
 
PDF
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
tdc-globalcode
 
PDF
Atmosphere 2018: Yury Tsarev - TEST DRIVEN INFRASTRUCTURE FOR HIGHLY PERFORMI...
PROIDEA
 
Docker, Atomic Host and Kubernetes.
Jooho Lee
 
MuleSoft Manchester Meetup #3 slides 31st March 2020
Ieva Navickaite
 
DockerCon US 2016 - Extending Docker With APIs, Drivers, and Plugins
Arnaud Porterie
 
Docker in production service discovery with consul - road to opscon 2015
Giovanni Toraldo
 
Docker Service Registration and Discovery
m_richardson
 
Monitoring Containers at New Relic by Sean Kane
Docker, Inc.
 
TDC2017 | São Paulo - Trilha Containers How we figured out we had a SRE team ...
tdc-globalcode
 
Atmosphere 2018: Yury Tsarev - TEST DRIVEN INFRASTRUCTURE FOR HIGHLY PERFORMI...
PROIDEA
 

What's hot (20)

PDF
How we scale DroneCi on demand
Patrick Jahns
 
PPTX
Microservices with docker swarm and consul
Nguyen Sy Thanh Son
 
PDF
Service discovery in Docker environments
alexandru giurgiu
 
PDF
Service discovery like a pro (presented at reversimX)
Eran Harel
 
PPTX
Openstack Overview
rajdeep
 
PPTX
Kubernetes101 - Pune Kubernetes Meetup 6
Harshal Shah
 
PPTX
Dockerizing Windows Server Applications by Ender Barillas and Taylor Brown
Docker, Inc.
 
PDF
Fabric8 - Being devOps doesn't suck anymore
Henryk Konsek
 
PDF
Microservices, Kubernetes and Istio - A Great Fit!
Animesh Singh
 
PDF
Kubernetes Ingress 101
Kublr
 
PDF
Container Runtimes: Comparing and Contrasting Today's Engines
Phil Estes
 
PDF
Workshop Consul .- Service Discovery & Failure Detection
Vincent Composieux
 
PDF
Kubernetes "Ubernetes" Cluster Federation by Quinton Hoole (Google, Inc) Huaw...
Quinton Hoole
 
PDF
Rancher 2.0 Technical Deep Dive
LINE Corporation
 
PPTX
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Akshata Sawant
 
PDF
runC: The little engine that could (run Docker containers) by Docker Captain ...
Docker, Inc.
 
PDF
Scaling docker with kubernetes
Liran Cohen
 
PDF
Developing Java based microservices ready for the world of containers
Claus Ibsen
 
PDF
Kubernetes deep dive - - Huawei 2015-10
Vishnu Kannan
 
PDF
Kubernetes intro public - kubernetes user group 4-21-2015
reallavalamp
 
How we scale DroneCi on demand
Patrick Jahns
 
Microservices with docker swarm and consul
Nguyen Sy Thanh Son
 
Service discovery in Docker environments
alexandru giurgiu
 
Service discovery like a pro (presented at reversimX)
Eran Harel
 
Openstack Overview
rajdeep
 
Kubernetes101 - Pune Kubernetes Meetup 6
Harshal Shah
 
Dockerizing Windows Server Applications by Ender Barillas and Taylor Brown
Docker, Inc.
 
Fabric8 - Being devOps doesn't suck anymore
Henryk Konsek
 
Microservices, Kubernetes and Istio - A Great Fit!
Animesh Singh
 
Kubernetes Ingress 101
Kublr
 
Container Runtimes: Comparing and Contrasting Today's Engines
Phil Estes
 
Workshop Consul .- Service Discovery & Failure Detection
Vincent Composieux
 
Kubernetes "Ubernetes" Cluster Federation by Quinton Hoole (Google, Inc) Huaw...
Quinton Hoole
 
Rancher 2.0 Technical Deep Dive
LINE Corporation
 
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft
Akshata Sawant
 
runC: The little engine that could (run Docker containers) by Docker Captain ...
Docker, Inc.
 
Scaling docker with kubernetes
Liran Cohen
 
Developing Java based microservices ready for the world of containers
Claus Ibsen
 
Kubernetes deep dive - - Huawei 2015-10
Vishnu Kannan
 
Kubernetes intro public - kubernetes user group 4-21-2015
reallavalamp
 
Ad

Similar to Hello istio (20)

PDF
21st Docker Switzerland Meetup - ISTIO
Niklaus Hirt
 
PDF
Introduction to Istio Service Mesh
Georgios Andrianakis
 
PDF
Managing microservices with Istio Service Mesh
Rafik HARABI
 
PDF
Istio Triangle Kubernetes Meetup Aug 2019
Ram Vennam
 
PDF
Managing Microservices With The Istio Service Mesh on Kubernetes
Iftach Schonbaum
 
PPTX
ISTIO Deep Dive
Yong Feng
 
PDF
Securing Microservices with Istio
Daniel Berg
 
PDF
Introduction to Istio on Kubernetes
Jonh Wendell
 
PDF
Introduction-to-Service-Mesh-with-Istio-and-Kiali-OSS-Japan-July-2019.pdf
ALVAROEMMANUELSOCOPP
 
PDF
Introduction-to-Service-Mesh-with-Istio-and-Kiali-OSS-Japan-July-2019.pdf
TinaCondrache1
 
PDF
Stop reinventing the wheel with Istio by Mete Atamel (Google)
Codemotion
 
PDF
Application Rollout - Istio
Mandar Jog
 
PDF
Service Mesh @Lara Camp Myanmar - 02 Sep,2023
Hello Cloud
 
PPTX
Kubernetes Istio Miami meetup
Dustin Humphries
 
PPTX
Microservices With Istio Service Mesh
Natanael Fonseca
 
PDF
Microservice: the phanot menace. Istio Service Mesh: the new hope. JEEConf 2019
Sergii Bishyr
 
PDF
How to Make Istio Work with Your App
StackRox
 
PDF
How to Make Istio Work with Your App
KarenBruner
 
PDF
Service Mesh in Practice
Ballerina
 
PDF
Service Mesh - kilometer 30 in a microservice marathon
Michael Hofmann
 
21st Docker Switzerland Meetup - ISTIO
Niklaus Hirt
 
Introduction to Istio Service Mesh
Georgios Andrianakis
 
Managing microservices with Istio Service Mesh
Rafik HARABI
 
Istio Triangle Kubernetes Meetup Aug 2019
Ram Vennam
 
Managing Microservices With The Istio Service Mesh on Kubernetes
Iftach Schonbaum
 
ISTIO Deep Dive
Yong Feng
 
Securing Microservices with Istio
Daniel Berg
 
Introduction to Istio on Kubernetes
Jonh Wendell
 
Introduction-to-Service-Mesh-with-Istio-and-Kiali-OSS-Japan-July-2019.pdf
ALVAROEMMANUELSOCOPP
 
Introduction-to-Service-Mesh-with-Istio-and-Kiali-OSS-Japan-July-2019.pdf
TinaCondrache1
 
Stop reinventing the wheel with Istio by Mete Atamel (Google)
Codemotion
 
Application Rollout - Istio
Mandar Jog
 
Service Mesh @Lara Camp Myanmar - 02 Sep,2023
Hello Cloud
 
Kubernetes Istio Miami meetup
Dustin Humphries
 
Microservices With Istio Service Mesh
Natanael Fonseca
 
Microservice: the phanot menace. Istio Service Mesh: the new hope. JEEConf 2019
Sergii Bishyr
 
How to Make Istio Work with Your App
StackRox
 
How to Make Istio Work with Your App
KarenBruner
 
Service Mesh in Practice
Ballerina
 
Service Mesh - kilometer 30 in a microservice marathon
Michael Hofmann
 
Ad

More from Jooho Lee (7)

PDF
Quay 3.3 installation
Jooho Lee
 
PPTX
OpenShift4 Installation by UPI on kvm
Jooho Lee
 
PDF
OpenSCAP Overview(security scanning for docker image and container)
Jooho Lee
 
PDF
OpenSCAP Overview(security scanning for docker image and container)
Jooho Lee
 
PPTX
Tcp summary
Jooho Lee
 
ODP
Practical byteman sample 20131128
Jooho Lee
 
PPTX
Consistent hashing
Jooho Lee
 
Quay 3.3 installation
Jooho Lee
 
OpenShift4 Installation by UPI on kvm
Jooho Lee
 
OpenSCAP Overview(security scanning for docker image and container)
Jooho Lee
 
OpenSCAP Overview(security scanning for docker image and container)
Jooho Lee
 
Tcp summary
Jooho Lee
 
Practical byteman sample 20131128
Jooho Lee
 
Consistent hashing
Jooho Lee
 

Recently uploaded (20)

PPTX
Tech Workshop Escape Room Tech Workshop
muthuiyad
 
PDF
AI/ML Infra Meetup | LLM Agents and Implementation Challenges
Alluxio, Inc.
 
PDF
DuckDuckGo Private Browser Premium APK for Android Crack Latest 2025
hashmi66g66
 
PPTX
Introduction to Windows Operating System
ssuser1028f8
 
PPTX
Cybersecurity: Protecting the Digital World
SURULIAPPANPREMKMAR
 
PDF
AI/ML Infra Meetup | Beyond S3's Basics: Architecting for AI-Native Data Access
Alluxio, Inc.
 
PDF
Ableton Live Suite for MacOS Crack Full Download (Latest 2025)
hashmi66g66
 
PPTX
WiFi Honeypot Detecscfddssdffsedfseztor.pptx
singlesrihari
 
PDF
Salesforce Agentforce AI Implementation.pdf
Robert Mark
 
PPTX
Custom Software Development Services.pptx.pptx
TVL IT Solutions
 
PPTX
Why Generative AI is the Future of Content, Code & Creativity?
Webuters Technologies Pvt. Ltd
 
PPTX
Monitoring Stack: Grafana, Loki & Promtail
GhanshyamSwami3
 
PPTX
Patient Appointment Booking in Odoo with online payment
AxisTechnolabs
 
PDF
Topaz Photo AI Crack New Download (Latest 2025)
hashmi66g66
 
PDF
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
PDF
How AI/LLM recommend to you ? GDG meetup 16 Aug by Fariman Guliev
HusseinMalikMammadli
 
PDF
How Tridens DevSecOps Ensures Compliance, Security, and Agility
Tridens
 
PDF
Time Tracking Features That Teams and Organizations Actually Need
Orangescrum
 
PPTX
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
PDF
Types of Token_ From Utility to Security.pdf
Herond Labs
 
Tech Workshop Escape Room Tech Workshop
muthuiyad
 
AI/ML Infra Meetup | LLM Agents and Implementation Challenges
Alluxio, Inc.
 
DuckDuckGo Private Browser Premium APK for Android Crack Latest 2025
hashmi66g66
 
Introduction to Windows Operating System
ssuser1028f8
 
Cybersecurity: Protecting the Digital World
SURULIAPPANPREMKMAR
 
AI/ML Infra Meetup | Beyond S3's Basics: Architecting for AI-Native Data Access
Alluxio, Inc.
 
Ableton Live Suite for MacOS Crack Full Download (Latest 2025)
hashmi66g66
 
WiFi Honeypot Detecscfddssdffsedfseztor.pptx
singlesrihari
 
Salesforce Agentforce AI Implementation.pdf
Robert Mark
 
Custom Software Development Services.pptx.pptx
TVL IT Solutions
 
Why Generative AI is the Future of Content, Code & Creativity?
Webuters Technologies Pvt. Ltd
 
Monitoring Stack: Grafana, Loki & Promtail
GhanshyamSwami3
 
Patient Appointment Booking in Odoo with online payment
AxisTechnolabs
 
Topaz Photo AI Crack New Download (Latest 2025)
hashmi66g66
 
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
How AI/LLM recommend to you ? GDG meetup 16 Aug by Fariman Guliev
HusseinMalikMammadli
 
How Tridens DevSecOps Ensures Compliance, Security, and Agility
Tridens
 
Time Tracking Features That Teams and Organizations Actually Need
Orangescrum
 
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
Types of Token_ From Utility to Security.pdf
Herond Labs
 

Hello istio

  • 1. Hello ISTIO! Service Mesh and Microservices Jooho Lee
  • 2. Who am I? Jooho Lee Senior Technical Account Manager in Toronto Red Hat OpenShift User Group Administrator in Facebook Ansible User Group Administrator in Facebook
  • 3. Routing & Load Balancing Service Discovery Failures, Timeouts and Retries Monitoring, Metrics and Tracing Logging Back Pressure and Shadowing A/B Testing Rate Limiting Authentication and Authorization Security Access Control Circuit Breaking Feature Lists
  • 5. Netflix OSS ● A set of frameworks to solve microservice problems at scale ○ Hystrix, Zuul, Eureka, Zipkin, Ribbon, Atlas ● Only Java support ➔ Different frameworks for different languages ◆ Spring, Node, Go? ➔ Inconsistent ➔ Built right into the apps For Polyglot Programming?
  • 7. Main Components ● Envoy ○ Deployed as a sidecar to intercept all inbound and outbound traffic, Istio uses the many features of Envoy Proxy in a transparent, agnostic way ● Mixer ○ Mixer acts on request attributes from each envoy. This allows for advanced access control, usage and telemetry ● Pilot ○ Pilot abstracts and controls. Using your defined rules around traffic management, routing and resiliency, it converts and sends the config to the Envoy proxies ● Citadel ○ Key and cert management for secure service to service and end user authentication.
  • 8. Control Plane -ISTIO-SYSTEM Egress Gateway Ingress Gateway Sidecar-Injector Statsd-Prom-BridgeCleanup-Secrets CitadelGalleyPilot Policy Telemetry Mixer Grafana Grafana-post TracingPrometheus Service Graph
  • 9. Flow Egress GatewayIngress Gateway CitadelGalleyPilot Policy Telemetry Mixer Control Plane RouterClient Envoy Envoy Chat Client Chat Server CDN
  • 11. Show me the sidecar!
  • 12. The I to O of ISTIO Show me some cool things! ● Install ISTIO!! ● Demo 1 - Base Deployment (Get Ready) ● Demo 2 - Smart Canaries - Routing Based on Headers ● Demo 3 - Smart Canaries - Egress Traffic ● Demo 4 - Smart Canaries - Canary Deployment ● Demo 5 - Service Resiliency - Load Balancing ● Demo 6 - Service Resiliency - Pod Ejection ● Demo 7 - Service Resiliency - Timeout ● Demo 8 - Chaos Testing - Retry + Fault Inject ● Demo 9 - Service Resiliency - Circuit Breaker ● Demo 10 - Monitoring - Tracing, Metrics
  • 13. Demo 1 - Base Deployment API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Redis CDN Please Connect ⇒chat-client.apps.toronto.openshiftworkshop.com
  • 14. Next ● Allow Egress(CDN) from chat server API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Check ● Refresh page ○ Check the log on top left ● Go to chat room ○ Refresh page ■ Messages gone Redis CDN Demo 2 - Smart Canaries, Routing on Headers chat-client.apps.toronto.openshiftworkshop.com
  • 15. Next - Deploy V2 Chat Server API-Server (Auth) Server Client(ETC) Client(Android) Client(Apple) Check ● Refresh page ○ Red Hat Logo is shown Redis CDN Demo 3 - Smart Canaries, Egress Traffic chat-client.apps.toronto.openshiftworkshop.com
  • 16. Check ● Login → Chat Room ○ Check Server Version ○ 90/10 Distribution ○ All messages remained API-Server (Auth) Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Rollback virtual service of chat-server to initial state ● Scale Out Server v2 to 3 ● Load Balancing Demo 4 - Smart Canaries, Canary Deployment chat-client.apps.toronto.openshiftworkshop.com
  • 17. Check ● ¼ users -> v1(25%) ● ¾ users ->v2 (75%) ● Add Destination Rule (LB: RANDOM) ○ Randomly pick v1 and v2 API-Server (Auth) Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Scale Down Server v2 to 1 ● Scale Out API-Server to 2 ● Occur 503 on one of API Server Server (v2) Server (v2) Demo 5 - Service Resiliency & Load Balancing chat-client.apps.toronto.openshiftworkshop.com
  • 18. Check ● POD Ejection ○ The problematic pod will be ejected from service Server (v2)Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Long Tasks(5sec) ● Set 1s timeout from chat server to auth API-Server (Auth) API-Server (Auth)503 Demo 6 - Service Resiliency, Pod Ejection chat-client.apps.toronto.openshiftworkshop.com
  • 19. Check ● Response time has to be under 1 secs Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Scale Down API Server to 1 ● Give fault inject (Server → Auth) ● Set retry policy (Server → Auth) API-Server (Auth) API-Server (Auth) Timeout Long Task Demo 7 - Service Resiliency, Timeouts chat-client.apps.toronto.openshiftworkshop.com
  • 20. Check ● No 503 errors Server (v2) Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Give fault inject (Server → Auth) ● Set retry policy (Server → Auth) API-Server (Auth) 503 Fault InjectionRetry Demo 8 - Chaos Testing, Retry, Fault Injection chat-client.apps.toronto.openshiftworkshop.com
  • 21. Check ● 503 errors if there are many requests by circuit breaker Server (v2)Client(ETC) Client(Android) Client(Apple) Server (v1) Redis Next ● Metrics ● Tracing API-Server (Auth) 503 Demo 9 - Service Resiliency, Circuit Breaker chat-client.apps.toronto.openshiftworkshop.com
  • 22. Demo 10 - Monitoring and Tracing http://prometheus-istio-system.apps.toronto.openshiftworkshop.com
  • 23. Demo 10 - Monitoring and Metrics http://grafana-istio-system.apps.toronto.openshiftworkshop.com
  • 24. Demo: ● https://github.com/Jooho/jhouse_openshift/demos/Hello_ISTIO Training: ● https://learn.openshift.com/servicemesh Sample Applications ● https://istio.io/docs/examples/bookinfo/ ● https://github.com/redhat-developer-demos References
  • 25. QnA